In my off time I'm still laboring organizing the SANS WhatWorks in Incident Detection Summit 2009, attractive locate in Washington, DC on 9-10 Dec 09. The list page should be updated presently to feature every of the speakers and commission participants. Wednesday is the terminal day to run at the discounted rate.I wrote the mass to wage more information on the Summit and vindicate its purpose.All of us poverty to pay our restricted information profession and section assets on the people, products, and processes that attain a difference. Does it attain significance to send money to projects when we don’t undergo their impact? I’m not conversation about hirsute “return on investment� (ROI) calculations or fictitious “risk� ratings. Don’t we every poverty to undergo how to encounter intruders, right now, and then centre on improvements that will attain it more arduous for intense guys to disclose, degrade, or deny our data?To respond this question, I’ve teamed with SANS to organize a unique circumstance -- the SANS WhatWorks in Incident Detection Summit 2009, on 9-10 Dec 2009 in Washington, DC. My content for this two-day, vendor-neutral, practitioner-focused Summit is to wage section operators with real-life guidance on how to discover intruders in the enterprise. This isn’t a conference on a limited commercial tool, or a series of death-by-slide presentations, or lectures by grouping garbled from reality. I’ve reached discover to the grouping I undergo on the face lines, who encounter intruders on a regular, regular basis. If you don’t conceive beatific guys undergo how to encounter intense guys, pay two life with grouping who go toe-to-toe with the worst intruders on the planet.We’ll discuss topics same the following:
- How do Computer Incident Response Teams and Managed Security Service Providers detect intrusions?
- What network-centric and host-centric indicators yield the prizewinning results, and how do you collect and dissect them?
- What unstoppered maker tools are the best-kept secrets in the section community, and how crapper you place them to impact directly in your organization?
- What sources of section info accumulation display actionable indicators?
- How crapper emerging disciplines much as proactive springy salutation and vaporific psychotherapy encounter modern persistent threats?
Here is a distribution of the mountain of subject concern experts who will arrange the schedule:
- Michael Cloppert, grownup theoretical member of Lockheed Martin's enterprise Computer Incident Response Team and regular SANS Forensics blogger.
- Michael Rash, Senior Security Architect for G2, Inc., communicator of Linux Firewalls and the psad, fwsnort, and fwknop section projects.
- Matt Richard, Malicious Code Operations Lead for the Raytheon joint Computer Emergency Response (RayCERT) Special Technologies and Analysis Team (STAT) program.
- Martin Roesch, originator of Sourcefire and developer of Snort.
- Bamm Visscher, Lead Information Security Incident Handler for the General Electric CIRT, and communicator of the unstoppered maker Sguil suite.
Ron Gula is scheduled to do one tone and I'm employed on the second. We'll hit guest moderators for some panels too, much as Mike Cloppert and Rocky DeStefano.I look forward to sight you at the conference!Copyright 2003-2009 Richard Bejtlich and TaoSecurity (taosecurity.blogspot.com and www.taosecurity.com)
Google
0 komentar:
Post a Comment